CVE-2026-5609: Tenda i12 Stack Overflow - HIGH
Plattform
linux
Komponente
tenda
CVE-2026-5609 describes a stack-based buffer overflow vulnerability present in the Tenda i12 router, specifically within the function formwrlSSIDset located in the /goform/wifiSSIDset file. Successful exploitation could allow a remote attacker to execute arbitrary code, potentially gaining control of the device. This vulnerability affects versions 1.0.0 through 1.0.0.11(3862) of the Tenda i12 firmware. An exploit for this vulnerability has been published, increasing the risk of exploitation.
So beheben
Kein offizieller Patch verfügbar. Prüfe auf Workarounds oder überwache auf Updates.
Häufig gestellte Fragen
What is CVE-2026-5609?
CVE-2026-5609 is a HIGH severity stack buffer overflow vulnerability affecting the Tenda i12 router. It allows remote attackers to potentially execute arbitrary code by manipulating the index/wl_radio argument in the wifiSSIDset function.
Am I affected by CVE-2026-5609?
You are likely affected if you are using a Tenda i12 router running firmware versions 1.0.0 through 1.0.0.11(3862). The vulnerability is remotely exploitable, so any device accessible from the internet is at risk.
How can I fix or mitigate CVE-2026-5609?
As of now, no official patch is available from Tenda to address this vulnerability. Mitigation strategies include isolating the router from the internet, implementing strict firewall rules, and monitoring network traffic for suspicious activity.
Abhängigkeiten automatisch überwachen
Werde benachrichtigt, wenn neue Schwachstellen deine Projekte betreffen. Für immer kostenlos.
Kostenlos starten